to obtain secure data exchanges between said interconnected entities (U u 36a-36b, 31a- 
37c/). 

5. Method according to claim 4, characterized in that, said first entity being a 
user (Ui) of said first system (4, 20), it includes a step for authenticating said user (U\) 
and in that said IP address is used as data for identifying this user (C/j). 

6. Method according to clam 5, characterized in that since said 
communications take place in data packet mode, said data for identifying a user (JJl) is 
present in encrypted form in conformity with said IPSec protocol, in each of said data 
packets. 

7. Method according to claim 1, characterized in that said first system (4, 20) 
is connected to a wireless transmission segment (RTT), in that the communications 
between this first system constituting a client system (4, 20) and said second system 
constituting a server system (3,3') take place in conformity with the so-called WAP 
protocol, and in that it includes the installation in said second system (3,3') of at least one 
piece of software constituting a WAP server (30) and a second piece of software (32) 
forming a unified interface between said WAP server (30) and at least one application 
(36a-366, 31a-31d) offering its services to said first entity (U\), so that said WAP server 
(30) is integrated into said server system (3, 3') as a web server. 

8. Method according to claim 7, characterized in that it includes the 
installation in said second system (3, 3') of an additional module (35) for two-way 
interface adaptation of structures, which makes it possible to support application 
interfaces (33) used by web servers. 

9. Method according to claim 7, characterized in that it includes the 
installation in said first system (4, 20) of a piece of software constituting a client and in 
that said piece of software is a WAP browser. 

1 0. Method according to claim 1 , characterized in that, said first system being 
a mobile system (25), it includes the assignment to said first system (25) of a temporary 
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3 * address, and in that it includes a step for dialog between said first system (25) and an 

4 element called a "home agent" (23) connected to said internet network (it), which makes 

5 it possible to correlate, at all times, said permanent address assigned to said first entity 

6 (^3) with said temporary address, in conformity with the so-called "mobile IPV6 

7 protocol". 



1 11. System architecture for secure communication between first and second 

2 entities interconnected via an internet network, said entities being associated with first 

3 and second computer data processing systems within a set of distributed systems 

4 connected to said internet network, characterized in that said first system (4, 20) is a 

5 system operating in the so-called client mode and said second system (3, 3') is a system 
M , 6 operating in the so-called server mode, in that said first and second entities are pieces of 
!r 7 software (36a-36b, 31a-31d) hosted in said first (4, 20) and second (3, 3') systems and/or 
45 8 a user (Ux) of said connected systems, in that said entities (U\, 36a-36b, 31a-31d) are 

m 

pr 9 associated with permanent Internet addresses of the so-called IP type, in that said second 

^ 10 system (3, 3 ') forming the server comprises at least one piece of software (31) forming a 

Si 

n 1 1 server (30, 3 1) and offering the services of at least one application (36a-36b, 31a-31d) to 

'7t 12 said first entity (U\), and in that said first (4, 20) and second (3, 3') systems include a 

[Ijj 13 communication protocol stack comprising at least one address layer (44, 390) using said 

q 14 permanent IP address and a logical layer (45, 391 ) for the execution of a step for 

m 15 encrypting, in end-to-end mode in conformity with a given security protocol, data 

1 6 exchanged between said interconnected entities (U\, 36a-36b, 31a-31d). 



1 12. Architecture according to claim 11, characterized in that said address layer 

2 (44, 390) conforms to the IPV6 protocol. 

1 13. Architecture according to claim 12, characterized in that since said internet 

2 network (R) conveys data packets in conformity with the IPV4 protocol, said protocol 

3 stacks of said first (4, 20) and second (3,3') systems each include a first address layer (44, 

4 390) using said IP address in the IPV6 protocol, and a second address layer (46, 392) in 

5 the IPV4 protocol from which IPV6-compatible addresses are derived, in order to obtain 

6 exchanges in the so-called tunnel mode; said logical layers (45, 391) executing an 
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7 - encryption step (45, 37) in favor of said data packets exchanged between said 

8 interconnected entities (U u 36a-36b, 31a-31d). 

1 14. Architecture according to claim 1 1 , characterized in that said logical layers 

2 (45, 391) for executing an encryption step conform to the so-called IPSec protocol, used 

3 with the so-called EPS mechanism for identifying information sources, in the so-called 

4 tunnel mode, in order to obtain secure data exchanges between said interconnected 

5 entities (Uu 36a-366, 31a-31d). 

1 15. Method according to claim 1 1 , characterized in that said first system 

2 (4, 20) is connected to a wireless transmission segment (RTT), in that the communications 

3 between this first system (4, 20) constituting a client system and said second system (3, 

4 3') constituting a server system take place in conformity with the so-called WAP protocol, 

5 and in that said second system (3,3') includes at least a first module constituting a WAP 

6 server (30) and a second module (32) forming a unified interface between said WAP 

7 server (30) and at least one application (36a-36b, 31a-31d) offering its services to said 

8 first entity (Ui), so that said WAP server (30) is integrated into said server system (3, 3') 

9 as a web server. 



p 1 16. Architecture according to claim 15, characterized in that said second 

m 

2 system (3, 3') includes at least one additional module (38#-38Z?) for the two-way 

3 conversion of data packets of structures in conformity with said web or WAP protocols. 



1 17. Architecture according to claim 15, characterized in that said first system 

2 is a mobile telephone terminal (20, 4) in the so-called GSM standard, in that it includes a 

3 WAP type browser constituting a client, and in that it includes a display screen for 

4 displaying pages in a language of the so-called WML type. 

1 18. Architecture according to claim 15, characterized in that said first system 

2 is a mobile telephone terminal in the so-called GPRS standard, in that it includes an 

3 Internet browser constituting a client, and in that it includes a display screen for 

4 displaying pages in a language of the so-called WML type. 
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